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This International Search Report has been prepared by this International Searching Authority and is transmitted to the applicant 
according to Article 1 8. A copy is being transmitted to the International Bureau. 



This International Search Report consists of a total of 3 sheets. 

[X] It is also accompanied by a copy of each prior art document cited in this report. 



1 . Basis of the report 

a. With regard to the language, the international search was carried out on the basis of the international application in the 
language in which it was filed, unless otherwise indicated under this item. 

I I the international search was carried out on the basis of a translation of the international application furnished to this 
Authority (Rule 23.1 (b)). 

b. With regard to any nucleotide and/or amino acid sequence disclosed in the international application, the international search 
was carried out on the basis of the sequence listing : 

I I contained in the international application in written form. 

I I filed together with the international application in computer readable form. 

I I furnished subsequently to this Authority in written form. 

I I furnished subsequently to this Authority in computer readble form. 

I I the statement that the subsequently furnished written sequence listing does not go beyond the disclosure in the 
international application as filed has been furnished. 

I I the statement that the information recorded in computer readable form is identical to the written sequence listing has been 
furnished 



2. Q Certain claims were found unsearchable (See Box I). 

3, Q]] Unity of invention is lacking (see Box II). 



With regard to the title, 

jX] the text Is approved as submitted by the applicant. 

I I the text has been established by this Authority to read as follows: 



With regard to the abstract, 

pr| the text is approved as submitted by the applicant. 

I I the text has been established, according to Rule 38.2(b), by this Authority as it appears in Box III. The applicant may, 
' — ' within one month from the date of mailing of this international search report, submit comments to this Authority. 

The figure of the drawings to be published with the abstract is Figure No. 2 



[X] as suggested by the applicant. None of the figures. 

I I because the applicant failed to suggest a figure. 

I I because this figure better characterizes the invention. 
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INTERNATIONAL PRELIMINARY EXAMINATION REPORT 

(PCT Article 36 and Rule 70) 



Applicant's or agent's file reference 
W02924-DV/jdh 


See Notification of Transmittal of International 
FOR FURTHER ACTION Preliminary Examination Report (Form PCT/IPEA/416) 


International application No. 
PCT/EP99/06340 


International filing date (day/month/year) 
30/08/1999 


Priority date (day/month/year) 
01/09/1998 


International Patent Classification (IPG) or national classification and IPC 
G07F7/10 


Applicant 

MINDPORT B.V. et al. 



1. This international prelin^iinary examination report has been prepared by this International Prelinninary Exannining Authority 
and is transmitted to the applicant according to Article 36. 

2. This REPORT consists of a total of 5 sheets, including this cover sheet. 

S This report is also accompanied by ANNEXES, i.e. sheets of the description, claims and/or drawings which have 
been amended and are the basis for this report and/or sheets containing rectifications made before this Authority 
(see Rule 70.16 and Section 607 of the Administrative Instructions under the PCT). 

These annexes consist of a total of 7 sheets. 



3. This report contains indications relating to the following items: 
I ^ Basis of the report 



Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial applicability; 
citations and explanations suporting such statement 



Certain observations on the international application 



II 


□ 


II) 


□ 


IV 


□ 


V 




VI 


□ 


VII 


□ 


VIII 





Date of submission of the demand 
21/02/2000 


Date of completion of this report 

2 8. 00 


Name and mailing address of the international 
preliminary examining authority: 

^ European Patent Office 
D-80298 Munich 

Tel. +49 89 2399 - 0 Tx: 523656 epmu d 
Fax: +49 89 2399 - 4465 


Authorized officer ^-^;;^7;;^-^ 

Stratford, C (| ^ |) 

Telephone No. +49 89 2399 2268 \^2^oj>- 



Form PCT/IPEA/409 (cover sheet) (January 1994) 



INTERNATIONAL PRELIMINARY 
EXAMINATION REPORT 



International application No. PCT/EP99/06340 



I. Basis of the report 

1 . This report has been drawn on the basis of (substitute sheets which have been furnished to the receiving Office in 
response to an invitation under Articie 14 are referred to in this report as "originaliy fiied" and are not annexed to 
the report since they do not contain amendments (Ruies 70. 16 and 70.17).): 
Description, pages: 



2-4 as originally filed 

1 ,5-7 with telefax of 11/1 2/2000 
Claims, No.: 

1-10 with telefax of 11/12/2000 
Drawings, sheets: 

1/2 as originally filed 

2/2 with telefax of 11/1 2/2000 



2. With regard to the language, all the elements marked above were available or furnished to this Authority in the 
language in which the international application was filed, unless otherwise indicated under this item. 

These elements were available or furnished to this Authority in the following language: , which is: 

□ the language of a translation furnished for the purposes of the international search (under Rule 23.1 (b)). 

□ the language of publication of the international application (under Rule 48.3(b)). 

□ the language of a translation furnished for the purposes of international preliminary examination (under Rule 
55.2 and/or 55.3). 

3. With regard to any nucleotide and/or amino acid sequence disclosed in the international application, the 
international preliminary examination was carried out on the basis of the sequence listing: 

□ contained in the international application in written form. 

□ filed together with the international application in computer readable form. 

□ furnished subsequently to this Authority in written form. 

□ furnished subsequently to this Authority in computer readable form. 

□ The statement that the subsequently furnished written sequence listing does not go beyond the disclosure in 
the international application as filed has been furnished. 

□ The statement that the information recorded in computer readable form is identical to the written sequence 
listing has been furnished. 
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4. The amendments have resulted in the cancellation of: 

□ the description, pages: 

□ the claims, Nos.: 

□ the drawings, sheets: 

5. □ This report has been established as If (some of) the amendments had not been made, since they have been 

considered to go beyond the disclosure as filed (Rule 70.2(c)): 

(Any replacement sheet containing such amendments must be referred to under item 1 and annexed to this 
report,) 

6. Additional observations, if necessary: 

V. Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial applicability; 
citations and explanations supporting such statement 

1. Statement 



Novelty (N) 


Yes: 


Claims 


1-10 




No: 


Claims 




Inventive step (IS) 


Yes: 


Claims 






No: 


Claims 


1-10 


Industrial applicability (lA) 


Yes: 


Claims 


1-10 




No: 


Claims 





2. Citations and explanations 
see separate sheet 

VIIL Certain observations on the international application 

The following observations on the clarity of the claims, description, and drawings or on the question whether the 
claims are fully supported by the description, are made: 
see separate sheet 
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5.0 With reference to Section V 

5.1 Reference is made to the following documents:- 

D1 : WO 95 34054 A (GIESECKE & DEVRIENT GMBH; LAMLA MICHAEL (DE); 

RANKL WOLFGANG (DE);) 14 December 1995 (1995-12-14) 
D2: EP-A-0 790 706 (HEWLETT PACKARD CO) 20 August 1 997 (1 997-08-20) 
D3: US-A-5 533 1 23 (NORCROSS THOMAS M ET AL) 2 July 1 996 (1 996-07- 

02) 

This numbering will be adhered to throughout the application process. 

5.2 Independent claims 1 , 6, and 8 fail to meet the requirements of Article 33(3) PCT 
because they lack an inventive step. 

The document D1 (in the description corresponding to Figure 9) is regarded as 
being the closest prior art to the subject-matter of claim 1 , and discloses a secure 
device (*Datentrager') comprising a chip with logic circuitry, wherein the chip is 
provided with a unique chip layout (the hard coded serial number - see pages 
17-18, bridging paragraph). The serial number in D1 is used to identify the secure 
device; it is clear to the skilled person that this could equally well be a class or 
group of devices. 

The secure device of D1 , which is preferably a chip card, is clearly intended for 
uses common to chip cards, i.e. including preventing unauthorised access. The 
skilled person would not require any inventiveness to implement the chip card in 
such a security system. Claims 6 and 8, which do not have any features not 
already stated in claim 1 , are similarly not inventive. 

5.3 The dependent claims 2-5, 7, 9, and 10 are also lacking in an inventive step. 
These claims relate to small changes and constructional details which the skilled 
person would choose to use according to the specific circumstances and 
requirements. The various uses of FPGAs are generally known in the state of the 
art, and their flexibility is clearly advantageous for such a use (see e.g. D2). 
Secure cells for physically protecting sensitive areas are similarly known (see e.g. 
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INTERNATIONAL PRELIMINARY international application No. PCT/EP99/06340 
EXAMINATION REPORT - SEPARATE SHEET 

D3). Introducing the variation to tlie circuit at a design stage (e.g. at synthesis or 
layout) are obvious possibilities. 

8.0 With reference to Section VIII 

8.1 The term '...or the like' used in claim 1 is not clear, because the scope of the claim 
is not well defined (Article 6 PCT). 
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(57) Abstract 

A security system for preventing unauthorized use, entrance or the like, comprises a number of secure devices, each of the secure 
devices comprising a chip with logic circuitry having a function in providing authorization to the security system. In at least a part of the 
secure devices the chip of a secure device is provided with a unique chip layout. 
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Security system 

The present invention relates to a security system 
for preventing unauthorized use, entrance or the like, 
comprising a number of secure devices, each of said secure 
devices comprising a chip with logic circuitry having a 
function in providing authorization to the security system. 

Security systems of the above-mentioned type are 
used in many applications, such as for example to prevent 
unauthorized access to secured rooms, in pay tv applica- 
tions, in banking systems etc. The security devices used are 
generally made as so-called smart cards comprising a chip. 
It will be clear that in view of the many smart cards 
provided to many different persons, security sytems of this 
type are open to attack by pirates or defrauders. Attacking 
a smart card currently involves a process, wherein during an 
analysis phase the chip of the smart card is probed to find 
a means of attack. In this process of attacking the layout 
of the chip is analysed to identify the appropriate probe 
points to access the data contained in the chip. Thereafter 
the attack is planned in a preparation phase and finally the 
contents of the chip are extracted in the actual attack 
phase. While the first and second steps typically take 
months, the third step can be performed in under a day. This 
means that once a smart card has been cracked for the first 
time, any second attack is relatively easy. It will be clear 
that this is a serious problem in security systems. For, 
once a smart card has been identified as being broken and 
has been disabled by the controlling system, the pirate can 
crack another card in a repeated attack within a relatively 
short period and thereby continue with piracy or fraud. 

Moreover, the smart cards used in prior art securi- 
ty systems are generally provided with a chip with the same 
basic silicon layout, even when used in different applica- 
tions. If for example a smart card of a specific type is 
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hacked for its banking information, the knowledge obtained 
by hacking this banking card can also be used to extract the 
secure information from the same type of card when it is 
used in a different application, for example in a pay 
5 television system* 

The invention aims to provide a security system of 
the above-mentioned type wherein the vulnerability for an 
attack by a pirate is significantly decreased and wherein 
the time required for a repeated attack of the secure device 

10 is substantially increased. 

To this end the invention provides a security 
system of the above-mentioned type, characterized in that in 
at least a part of said secure devices, the chip of a secure 
device is provided with a unique chip layout . 

15 In this manner a security system is obtained 

wherein at least a part but preferably all secure devices 
are provided with a chip with a random layout of the logic 
circuitry of the secure device. This means that the hardware 
implemention of the secure functionality of the secure 

2 0 device varies from device to device. 

According to a preferred embodiment at least said 
logic circuitry of the chips of said part of the secure 
devices is implemented in FPGA technology, wherein the 
layout is programmed in the FPGA circuitry either in a 
25 volatile or non- volatile manner. 

The invention further provides a set of secure 
devices to be used in a security system of the invention, 
wherein each of said secure devices comprises a chip with 
logic circuitry having a function in providing authorization 

3 0 to the holder of a secure device, wherein in at least a part 

of said secure devices, the chip of each secure device is 
provided with a unique chip layout . 

Finally, the invention provides a method for 
manufacturing a secure device for the the security system of 
35 the invention, wherein secure devices with a chip are used, 
said chips having logic circuitry having a function in 
providing authorization to the security system, wherein in 
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at least a part of said secure devices the chip of a secure 
device is provided with a unique chip layout. 

The invention will be further explained by referen- 
ce to the drawings, in which an embodiment of the system and 
5 method of the invention are schematically shown. 

Fig. 1 schematically shows a pay tv system compri- 
sing an embodiment of a security system of the invention. 

Fig. 2 schematically shows the internal structure 
of a smart card used as secure device in the system of fig. 
10 1, 

Fig. 3 shows a diagram of an embodiment of the 
method of the invention. 

Fig. 1 shows merely by way of example a broadcas- 
ting system wherein three broadcasters 1-3 are coupled with 

15 a multiplexer unit 4. The multiplexer unit 4 comprises means 
for scrambling, encoding and compressing broadcast signals 
provided by the broadcasters 1-3 and the thus obtained 
digital data streams are multiplexed into a digital trans- 
port stream. In the embodiment shown this digital transport 

20 stream is modulated by way of modulator 5 before transmissi- 
on. The operator of the equipment including the multiplexer 
unit 4 and modulator 5 is responsible for transmitting the 
signal to the receiving equipment of the public, one televi- 
sion set 6 being shown by way of example in fig. 1, One or 

25 more of the broadcasters 1-3 may be private broadcasters 

operating according to the concept of pay tv which implies 
subscription. This means that people wishing to view pro- 
grams broadcasted by a particular broadcaster, have to 
subscribe to such a broadcast and pay the appropriate fee. 

3 0 As schematically indicated the transmission of the 

signal may be carried out through one or more telecommunica- 
tion channels including a satellite link 7, terrestrial link 
8 or a cable system 9 . 

Access to anyone of the broadcast signals provided 

35 by the broadcasters 1-3 requires a decoder 10 generally 

including a conditional access module not shown cooperating 
with a smart card 11 in a manner known per se . The smart 
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card 11 is one of the secure devices of a security system 
implemented in the broadcasting system shown in fig. 1 to 
prevent unauthorized access to pay tv signals by persons 
which did not subscribe to the broadcast . Each subscriber is 
5 provided with a smart card 11, each smart card 11 having a 
unique key and/or address . This security system may operate 
for example in a manner known per se using ECM's and EMM's 
to provide access to the pay tv signals to authorized 
persons having a smart card 11 with means for providing 

10 authorization to the security system. 

As explained above, such a security system is open 
to attack by pirates trying to copy an original smart card 
to thereby provide a large number of pirate smart cards . In 
order to substantially increase the time required for a 

15 repeated attack on a smart card, the security system descri- 
bed is provided with secure devices or smart cards 11, each 
of the smart cards comprising a chip with logic circuitry 
having a function in providing authorization to the system 
in a conventional manner. The logic circuitry may include 

20 the circuitry to store a unique key, and/or the algorithms 

and logic required to provide authorization, for example the 
algorithm to decrypt the key hierarchy used in a security 
system such as eurocrypt . 

Fig. 2 shows in a very schematic manner the inter- 

25 nal structure of a smart card 11 showing that the chip of 
the smart card 11 includes a central processing unit 12, an 
EEPROM circuit 13, a RAM circuit 14 a secure cell 15 and 
random bus and logic circuitry 16. In the embodiment descri- 
bed the unique circuit layout is provided only in the secure 

30 cell 15, in which for example a cryptographic engine and a 
volatile storage element for storing a secret key are 
located. For a further explanation of this structure of a 
smart card reference is made to European Patent Application 
97202854.2 of the same applicant. 

35 According to a preferred embodiment the secure cell 

is implemented in FPGA technology (field programmable gate 
array) . The FPGA circuit of the secure cell 15 is program- 
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med in a usual manner in accordance with the diagram of fig. 
3 to personalize the smart card. In order to personalize a 
smart card 11 , unique information is stored in the secure 
cell, this unique information comprising a unique key, a key 
decryption algorithm used in the security system or the 
like. Usually an FPGA is programmed as follows. First the 
unique information for personalization is written in a high 
level language, for example C or VHDL. The high level 
language is first compiled. Thereafter the information is 
put through a synthesis tool which generates a logic imple- 
mentation of the high level language code. This logic 
implementation would generally include logic circuitry such 
as AND gates, OR gates, D latches etc., which are combined 
to produce the correct cryptographic functionality. Thereaf- 
ter the logic implementation is put through a routing 
program which constructs the actual program file for a 
particular FPGA. This file will specify which cells are 
interconnected within the FPGA and how each cell is program- 
med. The actual program file is then loaded into the FPGA 
circuit on power up or fuse blown into the FPGA depending on 
the particular FPGA technology used. 

Generally a synthesis tool can produce many varia- 
tions of the same functionality. In prior art applications 
the synthesis tool is designed to produce logic which 
utilizes the minimum number of gates, shows an optimal power 
efficiency, has the best speed performance or a compromise 
of the above. 

According to the present invention a variation 
factor, for example a random number, is introduced into the 
synthesis tool such that the layout provided by the synthe- 
sis tool will vary from chip to chip. As schematically shown 
in the diagram of fig. 3, a variation factor, such as a 
random number is fed into the synthesis tool and this 
results in the tool generating a set of logic which is 
unique to that variation factor. A new variation factor is 
used for personalizing each of the smart cards 11 of the 
security system. In this manner it is obtained that each 
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smart card 11 of the security system has a unique layout of 
the logic circuitry of the secure cell 15. 

Similarly a variation factor can be fed into the 
layout tool resulting in a further randomizing of the layout 
of the logic circuitry. 

Further it is possible to introduce a variation 
factor in the compilation step, so that the input to the 
synthesis tool will receive a varying input. All possible 
variations can be used either separately or in combination. 

Using the method of the invention the personaliza- 
tion step introducing a unique key, the logic implementation 
of the key and/or the decryption functions into the smart 
card 11, will result in a layout of the logic circuitry 
which is unique to each smart card 11 . In this manner it is 
obtained that the time needed for each attack of a security 
system is substantially increased as the pirate can not use 
the information obtained in an analysis phase and a prepara- 
tion phase in an attack of a first smart card, in attacking 
another smart card. 

As an alternative, instead of using FPGA technology 
in the secure cell only, more parts of the chip or the 
entire chip of the smart card can be built using FPGA 
techniques and can then be randomized in the above described 
manner . 

In a preferred embodiment a volatile FPGA is used, 
wherein the FPGA program is stored in RAM 14 of the smart 
card 11, which is powered by a battery just as the volatile 
storage of the key in the secure cell 15, Including defense 
traps as known per se in the smart card chip will result in 
a loss of the contents of the RAM memory and the volatile 
storage of the secure cell 15 if a pirate fails to overcome 
thew defense strategy of the chip. Thereby the programming 
of the FPGA circuitry will be lossed. In this manner it is 
obtained that by attacking a card no information is gathered 
on how to attack a next card. 

Although the invention is explained in the above by 
reference to a pay tv system, the security system of the 
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invention can be used in any security system using secure 
devices for providing authority to the holder of the secure 
device, such as security systems used to protect rooms, 
buildings, or the like against unauthorized entrance, 
5 banking cards etc. Further, although it is preferred to 
provide each smart card with a unique layout it is also 
possible to provide groups of cards with a unique layout. 

The invention is therefore not restricted to the 
above described embodiment which can be varied in a number 
10 of ways within the scope of the claims. 
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CLAIMS 

1. Security system for preventing unauthorized 
use, entrance or the like, comprising a number of secure 
devices, each of said secure devices comprising a chip with 
logic circuitry having a function in providing authorization 
to the security system, characterized in that in at least a 
part of said secure devices, the chip of a secure device is 
provided with a unique chip layout , 

2. Security system according to claim 1, wherein 
at least said logic circuitry of the chips of said part of 
the secure devices is implemented in FPGA technology, 
wherein the layout is programmed in the FPGA circuitry 
either in a volatile or non-volatile manner. 

3 . Security system according to claim 2 , wherein 
the logic circuitry of each secure device chip is provided 
in a secure cell of the chip. 

4- Security system according to claim 1, wherein 
the complete secure device chip is implemented in FPGA 
technology, wherein the layout is programmed in the chip 
either in a volatile or non-volatile manner. 

5. Security system according to claim 2, 3 or 4 , 
wherein the logic circuitry or the entire chip is made as a 
volatile programmable FPGA, wherein the FPGA program is 
stored in a battery powered RAM. 

6. A set of secure devices to be used in a securi- 
ty system according to anyone of claims 1-5, wherein each of 
said secure devices comprises a chip with logic circuitry 
having a function in providing authorization to the holder 
of a secure device, wherein in at least a part of said 
secure devices, the chip of each secure device is provided 
with a unique chip layout . 

7 . A set according to claim 6 , wherein at least 
said logic circuitry of the chips of said part of the secure 
devices is implemented in FPGA technology, wherein the 
layout is programmed in the FPGA circuitry either in a 
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volatile or non- volatile manner, 

8 . Method for manufacturing a secure device for a 
security system according to anyone of claims 1-5 or for a 
set of secure devices according to claim 6 or 1, wherein 
secure devices with a chip are used, said chips having logic 
circuitry having a function in providing authorization to 
the security system, wherein in at least a part of said 
secure devices, the chip of a secure device is provided with 
a unique chip layout . 

9. Method according to claim 8, wherein chips with 
logic circuitry in FPGA technology are use, said method 
comprising the steps of programming a unique information in 
the logic circuitry by means of synthesis tool and a layout 
tool, wherein for each secure device of said part of secure 
devices, a variation factor is introduced in at least one of 
the synthesis tool and the layout tool, thereby providing a 
unique circuit layout, 

10. Method according to claim 9, wherein the 
synthesis tool is provided with input information compiled 
from a high level language code, wherein a variation factor 
is introduced in at least one of the compilation step of the 
high level language code, the synthesis tool and the layout 
tool . 
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17-18, bridging paragraph). The serial number in D1 is used to identify the secure 
device; it is clear to the skilled person that this could equally well be a class or 
group of devices. 

The secure device of D1 , which is preferably a chip card, is clearly intended for 
uses common to chip cards, i.e. including preventing unauthorised access. The 
skilled person would not require any inventiveness to implement the chip card in 
such a security system. Claims 6 and 8, which do not have any features not 
already stated in claim 1 , are similarly not inventive. 

5.3 The dependent claims 2-5, 7, 9, and 10 are also lacking in an inventive step. 
These claims relate to small changes and constructional details which the skilled 
person would choose to use according to the specific circumstances and 
requirements. The various uses of FPGAs are generally known in the state of the 
art, and their flexibility is clearly advantageous for such a use (see e.g. D2). 
Secure cells for physically protecting sensitive areas are similarly known (see e.g. 
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D3). Introducing the variation to the circuit at a design stage (e.g. at synthesis or 
layout) are obvious possibilities. 

8-0 With reference to Section VIII 

8.1 The term *...or the like' used in claim 1 is not clear, because the scope of the claim 
is not well defined (Article 6 PCT). 
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